Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
preprojects vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-2915
Multiple SQL injection vulnerabilities in jobseekers/JobSearch.php (aka the search module) in Pre Job Board allow remote malicious users to execute arbitrary SQL commands via the (1) position or (2) kw parameter.
Preprojects Pre Job Board
1 EDB exploit
445
VMScore
CVE-2008-6055
PreProjects Pre Classified Listings stores pclasp.mdb under the web root with insufficient access control, which allows remote malicious users to obtain passwords via a direct request.
Preprojects Pre Classified Listings
755
VMScore
CVE-2008-6230
SQL injection vulnerability in Tour.php in Pre Projects Pre Podcast Portal allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Preprojects Pre Podcast Portal -
1 EDB exploit
755
VMScore
CVE-2012-5334
SQL injection vulnerability in product_desc.php in Pre Printing Press allows remote malicious users to execute arbitrary SQL commands via the pid parameter.
Preprojects Pre Printing Press -
1 EDB exploit
435
VMScore
CVE-2008-5976
Multiple cross-site scripting (XSS) vulnerabilities in siteadmin/forgot.php in PHP JOBWEBSITE PRO allow remote malicious users to inject arbitrary web script or HTML via (1) the adname parameter in a Submit action or (2) the UserName field.
Preprojects Php Jobwebsite Pro
1 EDB exploit
755
VMScore
CVE-2008-5977
SQL injection vulnerability in siteadmin/forgot.php in PHP JOBWEBSITE PRO allows remote malicious users to execute arbitrary SQL commands via the adname parameter in a Submit action.
Preprojects Php Jobwebsite Pro
1 EDB exploit
445
VMScore
CVE-2008-6053
PreProjects Pre Resume Submitter stores onlineresume.mdb under the web root with insufficient access control, which allows remote malicious users to obtain passwords via a direct request.
Preprojects Pre Resume Submitter
760
VMScore
CVE-2008-6231
Pre Classified Listing PHP allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Classified Listings -
2 EDB exploits
760
VMScore
CVE-2008-6232
Pre Shopping Mall allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Shopping Mall -
2 EDB exploits
435
VMScore
CVE-2008-6715
Multiple cross-site scripting (XSS) vulnerabilities in Pre ADS Portal 2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the msg parameter to (1) homeadmin/adminhome.php and (2) homeadmin/signinform.php.
Preprojects Pre Ads Portal
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »